chore(deps): bump the gomod group across 1 directory with 4 updates by dependabot[bot] · Pull Request #112 · uselagoon/machinery

dependabot · 2025-12-24T02:26:12Z

Bumps the gomod group with 3 updates in the / directory: github.com/hashicorp/go-version, golang.org/x/crypto and golang.org/x/oauth2.

Updates github.com/hashicorp/go-version from 1.7.0 to 1.8.0

Release notes

Sourced from github.com/hashicorp/go-version's releases.

v1.8.0

What's Changed

Add CODEOWNERS file in .github/CODEOWNERS by @mukeshjc in hashicorp/go-version#145

Linting by @KaushikiAnand in hashicorp/go-version#151

Correct typos in comments by @alexandear in hashicorp/go-version#134

Migrate GitHub Actions updates from TSCCR to Dependabot by @nodyhub in hashicorp/go-version#155

Bump the github-actions-backward-compatible group with 2 updates by @dependabot[bot] in hashicorp/go-version#157

Update doc reference in README by @alexandear in hashicorp/go-version#135

Bump the github-actions-breaking group with 3 updates by @dependabot[bot] in hashicorp/go-version#156

[Compliance] - PR Template Changes Required by @compliance-pr-automation-bot[bot] in hashicorp/go-version#158

Add benchmark test for version.String() by @Manikkumar1988 in hashicorp/go-version#159

Bytes implementation by @Manikkumar1988 in hashicorp/go-version#161

Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by @dependabot[bot] in hashicorp/go-version#167

Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by @dependabot[bot] in hashicorp/go-version#166

Bump the github-actions-breaking group across 1 directory with 2 updates by @dependabot[bot] in hashicorp/go-version#171

[IND-4226] [COMPLIANCE] Update Copyright Headers by @oss-core-libraries-dashboard[bot] in hashicorp/go-version#172

drop init() by @florianl in hashicorp/go-version#175

New Contributors

@mukeshjc made their first contribution in hashicorp/go-version#145

@KaushikiAnand made their first contribution in hashicorp/go-version#151

@alexandear made their first contribution in hashicorp/go-version#134

@nodyhub made their first contribution in hashicorp/go-version#155

@compliance-pr-automation-bot[bot] made their first contribution in hashicorp/go-version#158

@Manikkumar1988 made their first contribution in hashicorp/go-version#159

@oss-core-libraries-dashboard[bot] made their first contribution in hashicorp/go-version#172

@florianl made their first contribution in hashicorp/go-version#175

Full Changelog: hashicorp/go-version@v1.7.0...v1.8.0

Changelog

Sourced from github.com/hashicorp/go-version's changelog.

1.8.0 (Nov 28, 2025)

ENHANCEMENTS:

Add benchmark test for version.String() in hashicorp/go-version#159

Bytes implementation in hashicorp/go-version#161

INTERNAL:

Add CODEOWNERS file in .github/CODEOWNERS in hashicorp/go-version#145

Linting in hashicorp/go-version#151

Correct typos in comments in hashicorp/go-version#134

Migrate GitHub Actions updates from TSCCR to Dependabot in hashicorp/go-version#155

Bump the github-actions-backward-compatible group with 2 updates in hashicorp/go-version#157

Update doc reference in README in hashicorp/go-version#135

Bump the github-actions-breaking group with 3 updates in hashicorp/go-version#156

[Compliance] - PR Template Changes Required in hashicorp/go-version#158

Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group in hashicorp/go-version#167

Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group in hashicorp/go-version#166

Bump the github-actions-breaking group across 1 directory with 2 updates in hashicorp/go-version#171

[IND-4226] [COMPLIANCE] Update Copyright Headers in hashicorp/go-version#172

drop init() in hashicorp/go-version#175

Commits

505335e Merge pull request #175 from florianl/drop-init
6dd734b drop init()
0824a89 Merge pull request #172 from hashicorp/compliance/update-headers
9325934 [COMPLIANCE] Update Copyright and License Headers
5b82b98 Bump the github-actions-breaking group across 1 directory with 2 updates (#171)
6c6cd77 Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking grou...
0e50733 Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compati...
4e24ef1 Bytes implementation (#161)
437649a Add benchmark test for version.String() (#159)
b6c4db5 Merge pull request #158 from hashicorp/compliance-template
Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.45.0 to 0.46.0

Commits

19acf81 go.mod: update golang.org/x dependencies
3a1c6b4 x509roots/fallback: update bundle
f4602e4 ssh/agent: fix flaky test by ensuring a writeable home directory
See full diff in compare view

Updates golang.org/x/oauth2 from 0.33.0 to 0.34.0

Commits

acc3815 endpoints: fix %q verb use with wrong type
See full diff in compare view

Updates golang.org/x/term from 0.37.0 to 0.38.0

Commits

3863673 go.mod: update golang.org/x dependencies
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

shreddedbacon · 2026-01-07T22:22:04Z

@dependabot rebase

Bumps the gomod group with 3 updates in the / directory: [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version), [golang.org/x/crypto](https://github.com/golang/crypto) and [golang.org/x/oauth2](https://github.com/golang/oauth2). Updates `github.com/hashicorp/go-version` from 1.7.0 to 1.8.0 - [Release notes](https://github.com/hashicorp/go-version/releases) - [Changelog](https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md) - [Commits](hashicorp/go-version@v1.7.0...v1.8.0) Updates `golang.org/x/crypto` from 0.45.0 to 0.46.0 - [Commits](golang/crypto@v0.45.0...v0.46.0) Updates `golang.org/x/oauth2` from 0.33.0 to 0.34.0 - [Commits](golang/oauth2@v0.33.0...v0.34.0) Updates `golang.org/x/term` from 0.37.0 to 0.38.0 - [Commits](golang/term@v0.37.0...v0.38.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/go-version dependency-version: 1.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: golang.org/x/crypto dependency-version: 0.46.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: golang.org/x/oauth2 dependency-version: 0.34.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: golang.org/x/term dependency-version: 0.38.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Dec 24, 2025

dependabot bot force-pushed the dependabot/go_modules/gomod-83003b92b8 branch from dbf0d11 to 59e9eb4 Compare January 7, 2026 22:22

shreddedbacon approved these changes Jan 7, 2026

View reviewed changes

shreddedbacon merged commit af9ee66 into main Jan 7, 2026
3 of 4 checks passed

shreddedbacon deleted the dependabot/go_modules/gomod-83003b92b8 branch January 7, 2026 22:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the gomod group across 1 directory with 4 updates#112

chore(deps): bump the gomod group across 1 directory with 4 updates#112
shreddedbacon merged 1 commit intomainfrom
dependabot/go_modules/gomod-83003b92b8

dependabot bot commented on behalf of github Dec 24, 2025 •

edited

Loading

Uh oh!

shreddedbacon commented Jan 7, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Dec 24, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v1.8.0

What's Changed

New Contributors

1.8.0 (Nov 28, 2025)

Uh oh!

shreddedbacon commented Jan 7, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot bot commented on behalf of github Dec 24, 2025 •

edited

Loading